Vulnerability Details CVE-2023-25365
Cross Site Scripting vulnerability found in October CMS v.3.2.0 allows local attacker to execute arbitrary code via the file type .mp3
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.5%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2023-25365
-
cpe:2.3:a:octobercms:october:3.2.0